MiracleLinux 4 : krb5-1.9-22.AXS4.1 (AXSA:2012-29:01)

The remote MiracleLinux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2012-29:01 advisory. Kerberos V5 is a trusted-third-party network authentication system, which can improve your network's security by eliminating the insecure practice of...

openSUSE Security Update : krb5 (openSUSE-SU-2011:1169-1)

The following issues have been fixed : - CVE-2011-1528: In releases krb5-1.8 and later, the KDC can crash due to an assertion failure. - CVE-2011-1529: In releases krb5-1.8 and later, the KDC can crash due to a NULL pointer dereference. Both bugs could be triggered by unauthenticated remote...

openSUSE Security Update : krb5 (openSUSE-SU-2011:1169-1)

The following issues have been fixed : - CVE-2011-1528: In releases krb5-1.8 and later, the KDC can crash due to an assertion failure. - CVE-2011-1529: In releases krb5-1.8 and later, the KDC can crash due to a NULL pointer dereference. Both bugs could be triggered by unauthenticated remote...

Oracle Linux 6 : krb5 (ELSA-2011-1379)

The remote Oracle Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2011-1379 advisory. 1.9-9.2 - apply upstream patch to fix a null pointer derference with the LDAP kdb backend CVE-2011-1527, an assertion failure with multiple kdb backend...

Scientific Linux Security Update : krb5 on SL6.x i386/x86_64

Kerberos is a network authentication system which allows clients and servers to authenticate to each other using symmetric encryption and a trusted third party, the Key Distribution Center KDC. Multiple NULL pointer dereference and assertion failure flaws were found in the MIT Kerberos KDC when i...

RedHat Update for krb5 RHSA-2011:1379-01

Check for the Version of krb5 OpenVAS Vulnerability Test RedHat Update for krb5 RHSA-2011:1379-01 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms o...

Gentoo Security Advisory GLSA 201201-13 (mit-krb5)

The remote host is missing updates announced in advisory GLSA 201201-13. SPDX-FileCopyrightText: 2012 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR GPL-3.0-only...

Fedora Update for krb5 FEDORA-2011-16284

Check for the Version of krb5 OpenVAS Vulnerability Test Fedora Update for krb5 FEDORA-2011-16284 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms o...

Fedora Update for krb5 FEDORA-2011-14650

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

Fedora 15 : krb5-1.9.1-14.fc15 (2011-14673)

This update applies the upstream patch to fix a NULL pointer dereference wi= th the LDAP kdb backend CVE-2011-1527, 744125, an assertion failure with= multiple kdb backends CVE-2011-1528, and a NULL pointer dereference with= multiple kdb backends CVE-2011-1529. 737711 It also rolls up a number of...

Fedora 14 : krb5-1.8.4-3.fc14 (2011-14650)

This update applies the upstream patch to fix a NULL pointer dereference wi= th the LDAP kdb backend CVE-2011-1527, an assertion failure with multiple= kdb backends CVE-2011-1528, and a NULL pointer dereference with multiple= kdb backends CVE-2011-1529. 737711...

Medium: krb5

Issue Overview: Multiple NULL pointer dereference and assertion failure flaws were found in the MIT Kerberos KDC when it was configured to use an LDAP Lightweight Directory Access Protocol or Berkeley Database Berkeley DB back end. A remote attacker could use these flaws to crash the KDC...

Mandriva Update for krb5 MDVSA-2011:160 (krb5)

Check for the Version of krb5 OpenVAS Vulnerability Test Mandriva Update for krb5 MDVSA-2011:160 krb5 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the ter...

krb5: fixed kdc remote denial of service ( CVE-2011-1528, CVE-2011-1529) and unauthorized file access (CVE-2011-1526) (important)

The following issues have been fixed: - CVE-2011-1528: In releases krb5-1.8 and later, the KDC can crash due to an assertion failure. - CVE-2011-1529: In releases krb5-1.8 and later, the KDC can crash due to a null pointer dereference. Both bugs could be triggered by unauthenticated remote...

Mandriva Linux Security Advisory : krb5 (MDVSA-2011:160)

Multiple vulnerabilities has been found and corrected in krb5 : The krb5ldaplockoutaudit function in the Key Distribution Center KDC in MIT Kerberos 5 aka krb5 1.8 through 1.8.4 and 1.9 through 1.9.1, when the LDAP back end is used, allows remote attackers to cause a denial of service assertion...

Ubuntu Update for krb5 USN-1233-1

Ubuntu Update for Linux kernel vulnerabilities USN-1233-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN12331.nasl 7964 2017-12-01 07:32:11Z santu $ Ubuntu Update for krb5 USN-1233-1 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This...

CVE-2011-1528

The krb5ldaplockoutaudit function in the Key Distribution Center KDC in MIT Kerberos 5 aka krb5 1.8 through 1.8.4 and 1.9 through 1.9.1, when the LDAP back end is used, allows remote attackers to cause a denial of service assertion failure and daemon exit via unspecified vectors, related to the...

CVE-2011-1528

CVE-2011-1528 affects MIT Kerberos 5 KDC with LDAP back end, core in krb5 1.8–1.8.4 and 1.9–1.9.1; remote attackers can trigger denial of service (assertion failure and daemon exit) via vectors related to locked_check_p. Note: Berkeley DB variant is CVE-2011-4151 and not part of this CVE. Connect...

RHEL 6 : krb5 (RHSA-2011:1379)

The remote Redhat Enterprise Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2011:1379 advisory. Kerberos is a network authentication system which allows clients and servers to authenticate to each other using symmetric encryption and a...

Moderate: Red Hat Security Advisory: krb5 security update

Updated krb5 packages that fix multiple security issues are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, are...